CVE-2008-2580

2008-07-1523:41:00

[email protected]

web.nvd.nist.gov

cve-2008-2580

weblogic server

oracle

bea product suite

vulnerability

remote attack vectors

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.1 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.4%

JSON

Unspecified vulnerability in the WebLogic Server component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, and 9.0 has unknown impact and remote attack vectors.

Affected configurations

NVD

Node

oraclebea_product_suite

oraclebea_product_suiteMatch9.0

oraclebea_product_suiteMatch9.1

oraclebea_product_suiteMatch9.2mp3

oraclebea_product_suiteMatch10.0mp1

oracleweblogic_server_component

CPENameOperatorVersion
oracle:bea_product_suiteoracle bea product suiteeq*
oracle:bea_product_suiteoracle bea product suiteeq9.0
oracle:bea_product_suiteoracle bea product suiteeq9.1
oracle:bea_product_suiteoracle bea product suiteeq9.2
oracle:bea_product_suiteoracle bea product suiteeq10.0
oracle:weblogic_server_componentoracle weblogic server componenteq*

CPE	Name	Operator	Version
oracle:bea_product_suite	oracle bea product suite	eq	*
oracle:bea_product_suite	oracle bea product suite	eq	9.0
oracle:bea_product_suite	oracle bea product suite	eq	9.1
oracle:bea_product_suite	oracle bea product suite	eq	9.2
oracle:bea_product_suite	oracle bea product suite	eq	10.0
oracle:weblogic_server_component	oracle weblogic server component	eq	*